Skip to content

Report

Report #30

Workflow file for this run

name: Report
on:
schedule:
- cron: '0 4 * * 1'
workflow_dispatch:
jobs:
audit:
name: 🛡️ Audit Report
runs-on: ubuntu-latest
steps:
- name: 📥 Checkout
uses: actions/checkout@v4
- name: ⚙️ Setup
uses: ./.github/actions/setup
- name: 🐾 Audit dependencies
uses: snyk/actions/node@master
continue-on-error: true # To make sure that SARIF upload gets called
with:
args: --all-projects --severity-threshold=high --fail-on=all --sarif-file-output=snyk.sarif
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
- name: ☁️ Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: snyk.sarif
category: snyk